Am 13.09.2013 15:55, schrieb Dave Reisner: > On Fri, Sep 13, 2013 at 01:12:20PM +0200, Pierre Schmitz wrote: >> Hi, >> >> a new features in systemd 207 is to no longer read /etc/sysctl.conf. >> Instead /etc/sysctl.d/*.conf has to be used. Imho this needs a news item >> and we also need to think about what to do with the file we ship as part >> of procps-ng. > I've been talking about shipping that file in /usr/lib/sysctl.d for a > while, but never got around to filing a bug (or doing it myself). We > might also consider just dropping it, since this is in line with the > upstream default. > > There's some bugfixes I should backport to 207 (sigh), so I can add a > post_upgrade message to mention this once we figure out the direction > we're going in. > >> From the systemd changelog: >> * The systemd-sysctl tool no longer natively reads the >> file /etc/sysctl.conf. If desired, the file should be >> symlinked from /etc/sysctl.d/99-sysctl.conf. Apart from >> providing legacy support by a symlink rather than built-in >> code, it also makes the otherwise hidden order of application >> of the different files visible. >> >> Greetings, >> >> Pierre >> >> -- >> Pierre Schmitz, https://pierre-schmitz.com All default values from sysctl.conf which are active are also the kernel default so no need to ship this file anymore. # Protection from the SYN flood attack. net.ipv4.tcp_syncookies = 1 # Disable packet forwarding. net.ipv4.ip_forward = 0 net.ipv6.conf.all.forwarding = 0
greetings tpowa -- Tobias Powalowski Archlinux Developer & Package Maintainer (tpowa) http://www.archlinux.org tp...@archlinux.org
signature.asc
Description: OpenPGP digital signature